$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft File: bODpSXEbID5KyyK2gPP_9H7RbGE.mft (raw, json) Hash identifier: IVXPSeGzy/wrBn47bUQhnrM5GhTVkLtvmfPCYD+28aY= Subject key identifier: ED:13:45:29:C4:A2:11:31:AE:15:4C:7E:3F:28:F6:FE:C0:DA:DD:F7 Authority key identifier: 6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 Certificate issuer: /CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft Manifest number: 011A Signing time: Sun 19 Oct 2025 07:48:26 +0000 Manifest this update: Sun 19 Oct 2025 07:48:25 +0000 Manifest next update: Sun 26 Oct 2025 07:48:25 +0000 Files and hashes: 1: bODpSXEbID5KyyK2gPP_9H7RbGE.crl (hash: 9drxFJbpv7Al1iC1JzeDM71+zdfGWtOC5Tf5H3XZFCU=) 2: 7980C32AA71B11EFA8320136C4F9AE02.roa (hash: svWCFcB6b/XkbZIPeHevXUk9kvL6MAqPQu9nAp05skM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:48:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDC3F, serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Validity Not Before: Oct 19 07:48:25 2025 GMT Not After : Oct 26 07:48:25 2025 GMT Subject: CN=68f497ca-d245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e3:6e:29:db:b2:ed:c9:bd:04:25:0f:85:65: af:d3:5e:6d:60:73:f5:78:73:5f:52:3a:76:7d:e7: 93:91:f5:11:37:f6:7b:d4:46:08:46:89:8f:d7:64: 84:04:78:cb:a1:21:da:0f:d9:38:5c:30:11:28:a1: c9:7f:f6:58:52:8a:52:98:c4:90:9c:cf:e9:a6:fd: 70:ad:da:30:62:36:b9:d9:7c:ab:f5:12:f5:18:f6: 82:cd:ba:9b:c0:22:c6:37:7c:63:b0:06:d7:cf:e0: 14:a7:d5:c5:28:1f:ca:5c:33:ad:38:8f:0a:33:6a: 09:3c:11:2d:86:7d:c7:8d:f4:49:5a:41:ea:21:f3: 87:16:7b:b7:dd:d7:13:96:35:9d:f0:e2:1e:4e:3f: f7:a8:f5:43:9c:ef:f1:8b:ad:91:99:d6:10:0c:20: 49:6a:04:11:d2:ac:69:4e:50:9d:b5:b0:d7:80:03: c2:36:71:f0:0e:10:9a:e1:7c:ce:1f:0a:29:77:c4: ec:1a:5a:31:51:46:44:87:87:c0:40:19:b5:ed:8e: 07:3a:12:6a:6d:d0:66:73:dd:fc:ff:26:00:45:37: 5f:83:33:b3:72:71:ac:a2:4a:7f:8b:24:c5:b8:4d: b4:17:49:46:d8:bd:f9:09:1d:98:26:08:d4:3b:48: 15:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:13:45:29:C4:A2:11:31:AE:15:4C:7E:3F:28:F6:FE:C0:DA:DD:F7 X509v3 Authority Key Identifier: keyid:6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:ec:d1:36:c0:bc:eb:37:74:95:04:6a:54:7f:9c:49:ac:9c: f6:4c:7d:ca:09:0e:55:aa:ac:48:bc:d1:66:03:35:fc:ed:5d: 4e:e3:45:cd:25:f1:8a:ac:1e:4b:8e:7f:7f:fa:49:3f:85:e2: 63:5a:e6:5a:d4:6d:3a:7c:96:f0:44:21:8b:93:67:46:0d:f1: 2e:01:d8:5b:90:c8:ca:8c:03:c9:5e:15:27:68:f2:b8:27:ee: 2b:da:15:82:6a:70:0c:c9:c6:ad:8e:7f:7d:e0:62:83:c5:1b: fe:07:0e:43:14:86:00:bd:7c:67:be:aa:3a:66:67:b0:a5:00: 17:49:d0:29:06:63:05:00:37:80:2d:49:62:9b:65:fb:f0:9d: 2c:c7:e1:30:64:2f:dd:44:82:1f:15:99:a3:8c:70:ae:48:b2: 2f:48:ac:94:53:f5:09:b0:8e:0b:ae:d4:0c:04:12:90:f0:30: 48:b4:85:7f:38:59:82:f1:2e:29:5a:4c:b1:ab:f9:2d:9a:45: db:a1:ef:89:05:9e:6e:4d:5e:81:ec:c6:8f:91:89:79:f1:2d: 82:3a:cd:a2:77:4c:44:93:ee:b9:53:f3:10:8d:4f:51:23:be: 8f:2f:4c:fb:af:49:0b:55:5f:ae:56:53:ca:a3:63:09:1b:8c: bd:ed:95:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDM0YxMTAvBgNVBAUTKDZDRTBFOTQ5NzExQjIwM0U0QUNCMjJCNjgwRjNGRkY0 N0VEMTZDNjEwHhcNMjUxMDE5MDc0ODI1WhcNMjUxMDI2MDc0ODI1WjAYMRYwFAYD VQQDEw02OGY0OTdjYS1kMjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+NuKduy7cm9BCUPhWWv015tYHP1eHNfUjp2feeTkfURN/Z71EYIRomP12SE BHjLoSHaD9k4XDARKKHJf/ZYUopSmMSQnM/ppv1wrdowYja52Xyr9RL1GPaCzbqb wCLGN3xjsAbXz+AUp9XFKB/KXDOtOI8KM2oJPBEthn3HjfRJWkHqIfOHFnu33dcT ljWd8OIeTj/3qPVDnO/xi62RmdYQDCBJagQR0qxpTlCdtbDXgAPCNnHwDhCa4XzO Hwopd8TsGloxUUZEh4fAQBm17Y4HOhJqbdBmc938/yYARTdfgzOzcnGsokp/iyTF uE20F0lG2L35CR2YJgjUO0gVDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0TRSnE ohExrhVMfj8o9v7A2t33MB8GA1UdIwQYMBaAFGzg6UlxGyA+SssitoDz//R+0Wxh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREMzRi81Q0U4MTA0NjBF QjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklENUt5eUsyZ1BQXzlIN1Ji R0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPRHBTWEViSUQ1S3l5SzJnUFBfOUg3UmJHRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REMzRi81Q0U4MTA0NjBFQjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklE NUt5eUsyZ1BQXzlIN1JiR0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA87NE2wLzrN3SVBGpUf5xJrJz2TH3KCQ5VqqxIvNFmAzX87V1O40XN JfGKrB5Ljn9/+kk/heJjWuZa1G06fJbwRCGLk2dGDfEuAdhbkMjKjAPJXhUnaPK4 J+4r2hWCanAMycatjn994GKDxRv+Bw5DFIYAvXxnvqo6ZmewpQAXSdApBmMFADeA LUlim2X78J0sx+EwZC/dRIIfFZmjjHCuSLIvSKyUU/UJsI4LrtQMBBKQ8DBItIV/ OFmC8S4pWkyxq/ktmkXboe+JBZ5uTV6B7MaPkYl58S2COs2id0xEk+65U/MQjU9R I76PL0z7r0kLVV+uVlPKo2MJG4y97ZV+ -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:14 2025 by rpki-client